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- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)S Responsive to communication(s) filed on 06 May 2004 . 
2a)[3 This action is FINAL. 2b)D This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 
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Response to Request for Reconsideration 

This is in response to a request for reconsideration file December 17 th , 2004. Claims 1-68 

are being reconsidered in this action. 



Claim Rejections - 35 JJSC §103 

1. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

2. Claims 1-68 are rejected under 35 U.S.C. 103(a) as being unpatentable over by 
Whitehouse (U.S. Patent No. 6,005,945) in view of Leon (U.S. Patent No. 6,424,954). 

3. As per claim 1, Whitehouse teaches a security system {secure central computer, 102) for 
securing data in a computer network {network 100, fig 3, 4, 7) comprising a plurality of user 
terminals {customer, user, 102) coupled {connected) to the computer network, a cryptographic 
device {cryptographic key) remote from the plurality of user terminals and coupled to the 
computer network, a plurality of security device transaction data for ensuring authenticity of the 
one or more users, wherein each security device transaction data is related to a user and wherein 
the cryptographic device is not dedicated to specific user terminals {see fig 3, 4 and 7, column 8 
line 30-9 line 63). Whitehouse fails to teach a cryptographic device includes a computer 
executable code for authenticating one or more users and verifying that the authenticated user is 
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authorized to assume a role. However, Leon teaches a cryptographic device includes a computer 
executable code for authenticating one or more users and verifying that the authenticated user is 
authorized to assume a role (see column 8 lines 45-67, 9 lines 20-27). Therefore/it would have 
been obvious to one of ordinary skill in the art at the time the invention was made to modify 
Whitehouse' s inventive concept to include Leon's cryptographic device includes a computer 
executable code for authenticating one or more users and verifying that the authenticated user is 
authorized to assume a role because this would have provided knowledge to the system as to 
which entity is using the system in order to determine which key to load unto system and which 
level of security is applicable. 

4. As per claim 2, Whitehouse teaches a system wherein the security device transaction data 
related to a user is loaded into the cryptographic device when the user requests to operate on a 
value bearing item (see column 9 line 32-63). 

5. As per claim 3, Whitehouse teaches the claim inventive concept stated in claim 1 . 
Whitehouse fails to teach a system wherein the assumed role includes one or more corresponding 
operations to be performed by the authenticated user. However, Leon teaches a system wherein 
the assumed role includes one or more corresponding operations to be performed by the 
authenticated user (see column 8 lines 45-62, 9 lines20-27, 35-67). Therefore, it would have 
been obvious to one of ordinary skill in that art at the time the invention was made to modify 
Whitehouse's inventive concept to include Leon's system wherein the assumed role includes one 
or more corresponding operations to be performed by the authenticated user because this would 
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have provided knowledge to the system as to which entity is using the system in order to 
determine which key to load unto system and which level of security is applicable. 

6. As per claim 4-10, Whitehouse teaches Whitehouse teaches the claim inventive concept 
stated in claim 1. Whitehouse fails to teach a system wherein the assumed role is a security 
officer role to initiate a key management function, a key custodian role to take possession of 
shares of keys, an administrator role to manage a user access control database, an auditor role to 
manage audit logs, a provider role to withdraw from a user account, a user role to operate on a 
VBI, a certificate authority role to allow a public key certificate to be loaded and verified. 
However, Leon teaches a system wherein the assumed role is a security officer role to initiate a 
key management function, a key custodian role to take possession of shares of keys, an 
administrator role to manage a user access control database, an auditor role to manage audit logs, 
a provider role to withdraw from a user account, a user role to operate on a VBI, a certificate 
authority role to allow a public key certificate to be loaded and verified {see column 8 lines 45-9 
line 67). Therefore, it would have been obvious to one of ordinary skill in that art at the time the 
invention was made to modify Whitehouse' s inventive concept to include Leon's system wherein 
the assumed role is a security officer role to initiate a key management function, a key custodian 
role to take possession of shares of keys, an administrator role to manage a user access control 
database, an auditor role to manage audit logs, a provider role to withdraw from a user account, a 
user role to operate on a VBI, a certificate authority role to allow a public key certificate to be 
loaded and verified because this would have provided knowledge to the system as to which 
entity is using the system in order to determine which key to load unto system and which level of 
security is applicable. 
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7. As per claims 1 1-14, 16, Whitehouse teaches the inventive concept as stated in claim 1. 
Whitehouse fails to teach a system wherein the cryptographic device includes a state machine for 
determining a state corresponding to availability of one or more commands in conjunction with 
the role, stateless, includes a computer executable code for preventing unauthorized modification 
of data, for ensuring the proper operation of cryptographic security and VBI related meter 
functions, for supporting multiple concurrent users and maintaining a separation of roles and 
operations performed by each user. However, Leon teaches a system wherein the cryptographic 
device includes a state machine for determining a state corresponding to availability of one or 
more commands in conjunction with the role, stateless, includes a computer executable code for 
preventing unauthorized modification of data, for ensuring the proper operation of cryptographic 
security and VBI related meter functions, for supporting multiple concurrent users and 
maintaining a separation of roles and operations performed by each user {see column 8 lines 45- 
9 line 67). Therefore, it would have been obvious to one of ordinary skill in the art at the time 
the invention was made to modify Whitehouse' s inventive concept to include Leon's system 
wherein the cryptographic device includes a state machine for determining a state corresponding 
to availability of one or more commands in conjunction with the role, stateless, includes a 
computer executable code for preventing unauthorized modification of data, for ensuring the 
proper operation of cryptographic security and VBI related meter functions, for supporting 
multiple concurrent users and maintaining a separation of roles and operations performed by 
each user because this would have provided knowledge to the system as to which entity is using 
the system in order to determine which key to load unto system, which state to operate the 
system and which level of security is applicable. 
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8. As per claim 15, Whitehouse teaches a system wherein at least one of the users is an 
enterprise account (see column 23 line 41-67). 

9. As per claim 17-18, Whitehouse teaches a system wherein the value bearing item is a 
mail piece comprises a digital signature (fig 2). 

10. As per claim 19 and 20, Whitehouse teaches a system wherein the cryptographic device 
encrypts validation information according to a user request for printing a VBI, generates data 
sufficient to print a postal indicium in compliance with postal service regulation on the mail 
piece (fig 2), 

11. As per claim 2 1 and 22, Whitehouse teaches a system wherein bar code is printed on the 
value bearing item that is a ticket (fig 2). 

12. As per claim 23 and 24, Whitehouse teaches a system wherein each security device 
transaction data includes an ascending register value, a descending register value, a respective 
cryptographic device ID, an indicium key certificate serial number, a licensing ZIP code, a key 
token for an indicium signing key, user secrets, a key for encrypting user secrets, data and time 
of last transaction, last challenge received from a respective client subsystem, an operational 
state of the respective device, expiration dates for keys, and a passphrase repetition list, a private 
key, a public key, and a public key certificate, wherein the private key is used to sign device 
status responses and a VBI which, in conjunction with a public key certificate, demonstrates that 
the device and the VBI are authentic (see column 10 line 45-11 line 29, 20 line 16-40). 
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13. As per claim 25, Whitehouse teaches a system further comprising at least one more 
cryptographic device remote from the plurality of user terminals coupled to the computer 
network, wherein the at least one more cryptographic device includes a computer executable 
code for authenticating any of the plurality of users (see figs 4, and 7). 

14. As per claim 26, Whitehouse teaches a system wherein the cryptographic device shares a 
secret with the at least one more cryptographic device (see column 8 lines 30-42, 9 lines 12-31, 
10 lines 50-11 line 29, 12 lines 35-64). 

15. As per claim 27-29, Whitehouse teaches a system wherein one of the plurality of 
cryptographic devices is a master device and generates a master key set (MKS) includes a Master 
Encryption Key (MEK) used to encrypt keys when stored outside the device and a Master 
Authentication Key (MAK) used to compute a DES MAC for signing keys when stored outside 
of the device exported to other cryptographic devices by any cryptographic device (see column 4 
line 20-27, 16 lines 39-44, 23 lines 41-67). 

16. As per claim 30, Whitehouse teaches a method for securing data (secure computer, 104, 
for securing data) in a computer network (network, 100, fig 3 and 4) having a plurality of user 
terminals (user, 102), the method comprising storing (memory for storing, 154) information 
(user data) about a plurality of users using the plurality of terminals in a database remote from 
the plurality of securing the information about the users in the database by one or more of 
cryptographic devices (cryptographic keys) remote from the plurality of user terminals, storing a 
plurality of security device transaction data (transaction data), wherein each transaction data is 
related to one of the plurality of users and wherein the cryptographic device is not dedicated to 
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specific user terminals (see fig 3, 4 and 7, column 8 line 30-9 line 63). Whitehouse fails to teach 
verifying that a user is authorized to assume a role. However Leon teaches verifying that a user is 
authorized to assume a role (see column 8 lines 45-67, 9 lines 20-27). Therefore, it would have 
been obvious to one of ordinary skill in the art at the time the invention was made to modify 
Whitehouse' s inventive concept to include Leon's verifying that a user is authorized to assume a 
role because this would have provided knowledge to the system as to which entity is using the 
system in order to determine which key to load unto system and which level of security is 
applicable. . 

17. As per claim 3 1, Whitehouse teaches a method of loading a security device transaction 
data related to a user into one of the one or more of cryptographic devices when the user requests 
to operate on a value bearing item (see column 9 line 32-63). 

18. As per claim 32-40, Whitehouse teaches the inventive concept as stated in claim 1. 
Whitehouse fails to teach a method of authenticating the identity of each user, verifying that the 
user is authorized to perform a corresponding operation based on the assumed role wherein the 
assumed role is a security officer role and the corresponding command is initiating a key 
management function, a key custodian role to take possession of shares of keys, an administrator 
role to manage a user access control database, an auditor role to manage audit logs, a provider 
role to authorize increasing credit for a user account, a user role to perform expected IB IP meter 
operation, a certificate authority role to allow a public key certificate to be loaded and verified. 
However Leon teaches a method of authenticating the identity of each user, verifying that the 
user is authorized to perform a corresponding operation based on the assumed role wherein the 
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assumed role is a security officer role and the corresponding command is initiating a key 
management function, a key custodian role to take possession of shares of keys, an administrator 
role to manage a user access control database, an auditor role to manage audit logs, a provider 
role to authorize increasing credit for a user account, a user role to perform expected EBIP meter 
operation, a certificate authority role to allow a public key certificate to be loaded and verified 
(see column 8 lines 45-9 line 67). Therefore, it would have been obvious to one of ordinary 
skill in the art at the time the invention was made to modify Whitehouse' s inventive concept to 
include Leon's a method of authenticating the identity of each user, verifying that the user is 
authorized to perform a corresponding operation based on the assumed role wherein the assumed 
role is a security officer role and the corresponding command is initiating a key management 
function, a key custodian role to take possession of shares of keys, an administrator role to 
manage a user access control database, an auditor role to manage audit logs, a provider role to 
authorize increasing credit for a user account, a user role to perform expected IBEP meter 
operation, a certificate authority role to allow a public key certificate to be loaded and verified 
because this would have provided knowledge to the system as to which entity is using the system 
in order to determine which key to load unto system, which state to operate the system and which 
level of security is applicable. 

19. As per claim 41, Whitehouse teaches the inventive concept as stated in claim 1 . 
Whitehouse fails to teach a method of determining a state corresponding to availability of one or 
more commands in conjunction with the roles. However, Leon teaches a method of determining 
a state corresponding to availability of one or more commands in conjunction with the roles (see 
column 8 lines 45-62, 9 lines 35-67). Therefore, it would have been obvious to one of ordinary 
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skill in the art at the time the invention was made to modify Whitehouse' s inventive concept to 
include Leon's a method of determining a state corresponding to availability of one or more 
commands in conjunction with the roles this would have provided knowledge to the system as to 
which entity is using the system in order to determine which level of security is applicable. 

20. As per claim 43, Leon teaches a method wherein the state machine includes one or more 
of an uninitialized state, an initialized state, an operational state, an administrative state, an 
exporting shares state, an importing shares state, and an error state (see column 9 lines 59-67). 

21 . As per claim 44, Whitehouse teaches a method of storing data for creating an indicium, 
account maintenance, and revenue protection (see figs 4 and 7). 

22. As per claim 45-47, Whitehouse teaches a method of printing a mail piece includes a 
digital signature, a postage amount, an ascending register of used postage and descending 
register of available postage (see abstract, column 16 lines 25-38). 

23 . As per claim 48, 49, Whitehouse teaches a method of printing a ticket, a coupon (see fig 
2). 

24. As per claim 50, Whitehouse teaches a method wherein the security device transaction 
data includes an ascending register value, a descending register value, a respective cryptographic 
device ID, an indicium key certificate serial number, a licensing ZIP code, a key token, ah 
indicium signing key, user secrets, a key for encrypting user secrets, data and time of last 
transaction, last challenge received from a respective client subsystem, an operational state of the 
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respective device, expiration dates for keys, and a passphrase repetition list (see column 8 lines 
30-42, 9 lines 12-31, 10 lines 50-11 line 29, 12 lines 35-64). 

25. As per claim 51, Whitehouse teaches a method of using a private key to sign device 
status responses and the VBI which, in conjunction with a public key certificate, demonstrates 
that the device and the VBI are authentic (see column 9 line 32-63). 

26. As per claim 52, Whitehouse teaches a method of sharing a secret with any of the other 
devices (see column 9 line 32-63). 

27. As per claim 53-56, Whitehouse teaches a method of generating a master key set (MKS), 
generating a Master Encryption Key (MEK) used to encrypt keys when stored outside the device, 
Master Authentication Key (MAK) used to compute a DES MAC for signing keys when stored 
outside of the device and performing one or more of Rivest, Shamir and Adleman (RSA) public 
key encryption, DES, Triple-DES, DSA signature, SHA-1, and Pseudo-random number 
generation algorithms by each of the cryptographic devices (see column 4 line 20-27, 16 lines 
39-44, 23 lines 41-67). 

28. As per claim 57, Whitehouse teaches a cryptographic device (secure central computer, 
102) for securing data (postal information) on a computer network (network 100, fig 3 f 4) 
comprising a processor (postal authority computer for processing, 180) programmed to 
authenticate (authenticate) a plurality of users (users, 104) on the computer network (network 
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100, fig 3, 4) for secure processing of a value bearing item {postal indicium, fig 2) (see abstract, 
figs 2, 3, 4), a memory {memory, 154) for storing {stores) security device transaction data 
{records) for ensuring authenticity of a user, wherein the security device transaction data is 
related to the one of the plurality of users, a cryptographic engine {cryptographic key) for 
cryptographically protecting data and an interface {interface, 152, 112, 252) for communicating 
with the computer network and wherein the cryptographic device is not dedicated to specific user 
terminals {see abstract, fig 4, 7, column 8 lines 54-8 line 63). Whitehouse fails to teach a system 
wherein to determine that user is authorized to assume a role. However Leon teaches a system 
wherein to determine that user is authorized to assume a role {see column 8 lines 45-67, 9 lines 
20-27). Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Whitehouse' s inventive concept to include Leon's a system 
wherein to determine that user is authorized to assume a role because this would have provided 
knowledge to the system as to which entity is using the system in order to determine which key 
to load unto system and which level of security is applicable. 

29. As per claim 58-62, Whitehouse teaches the inventive concept stated in claim 1 . 
Whitehouse fails to teach a cryptographic device wherein the processor is programmed to 
verify that the identified user is authorized to assume a role of a key custodian role to take 
possession of shares of keys, an administrator role to manages a user access control database, a 
provider role to authorize increasing credit for a user account or a user role to perform 
expected IBIP postal meter operations and perform a corresponding operation. However, Leon 
teaches a cryptographic device wherein the processor is programmed to verify that the 
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identified user is authorized to assume a role of a key custodian role to take possession of 
shares of keys, an administrator role to manages a user access control database, a provider role 
to authorize increasing credit for a user account or a user role to perform expected IBIP postal 
meter operations and perform a corresponding operation {see column 8 lines 45-9 line 67). 
Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Whitehouse's inventive concept to include Leon's a 
cryptographic device wherein the processor is programmed to verify that the identified user is 
authorized to assume a role of a key custodian role to take possession of shares of keys, an 
administrator role to manages a user access control database, a provider role to authorize 
increasing credit for a user account or a user role to perform expected IBIP postal meter 
operations and perform a corresponding operation because this would have provided knowledge 
to the system as to which entity is using the system in order to determine which level of security 
is applicable. 

30. As per claim 63-65, Whitehouse teaches a cryptographic device further comprising a 
stored secret that is a password, a public/private key for cryptographically protecting data {see 
column 8 lines 30-42, 9 lines 12-31, 10 lines 50-11 line 29, 12 lines 35-64). 

31. As per claim 66, Whitehouse teaches a cryptographic device wherein the value bearing 
item is a postage value including a postal indicium {see abstract, column 16 lines 25-38). 
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32. As per claim 67-68, Whitehouse teaches a cryptographic device wherein the value 
bearing item that include a bar code is a ticket (fig 2). 



Response to Arguments 

33. Applicant's arguments filed October 29 th , 2003 have been fully considered but they are 
not persuasive. 

a. Applicants argues that the prior arts (Whitehouse and Leon) fail to teach among 
other thing a cryptographic device and wherein the cryptographic device is not dedicated 
to specific user terminals (newly added limitation). Examiner respectfully disagrees with 
applicant's characterization of the prior arts. Whitehouse as well as Leon teach among 
other things a system for electronic distribution of postage includes at least one secure 
central computer include cryptographic device for generating postal indicia in response to 
postage requests submitted by end user computers, and at least one postal authority 
computer system for processing the postal indicia on mail pieces. Whitehouse further 
teach that many large firms maintain a private IntraNet which is a collection of PC's and 
networks isolated from the World Wide InterNet This is done for obvious security 
reasons—all data transferred within the confines of the IntraNet is completely protected. 
Another embodiment of this invention can be a secure central computer which is 
dedicated to a particular organization (with multiple users). The secure central computer 
might be licensed or rented from the governing postal agency for specific us only by the 
corporate customer. The cost of this secure computer (and any secure environmental 
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conditions that might be required by the governing postal agency or an authorized postal 
vendor), even if relatively substantial, would not be a overly critical issue because that 
single computer will be serving the entire corporation. The basic principals of this 
invention would still be maintained individual users would not have local PSD's. The 
function of the PSD would again be centralized. According to Whitehouse a firm the size 
of American Telephone and Telegraphic might consider a $200,000 investment in their 
own corporate secure postal computer to be very reasonable. Their users would be able to 
rely upon the relative stability of the internal corporate network for postage access, 
destination addresses would never be transmitted outside of the corporate IntraNet during 
indicium request, all "local" postage meters throughout the entire company could be 
eliminated, and individual and/or departmental billing records for mail costs could be 
maintained and tracked by the company in a central site. This approach still honors the 
basic tenant of this invention. Keep the number of secure computer sites limited and 
avoid the installation of millions of PSD's (with the attendant security problems and 
costs) at end user locations (see column 27 lines 27-60). Applicant, in assessing 
Whitehouse' s inventive concept fails to realize that Whitehouse system is a centralized 
system and centralized system is nondedicated system which is capable of servicing an 
organization with multiple users and not a particular user. Therefore, Examiners rejects 
the notion that the prior art fail to teach a cryptographic device and wherein the 
cryptographic device is not dedicated to specific user terminals. 
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Conclusion 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1. 136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Firmin Backer whose telephone number is (703) 305-0624. The 
examiner can normally be reached on Mon-Thu 9:00 AM - 5:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, James Trammell can be reached on (703) 305-9768. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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